Warning: Permanently added '10.128.1.22' (ED25519) to the list of known hosts.
2025/12/28 00:10:17 parsed 1 programs
[ 90.787400][ T5835] cgroup: Unknown subsys name 'net'
[ 90.938778][ T5835] cgroup: Unknown subsys name 'cpuset'
[ 90.948470][ T5835] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 92.670311][ T5835] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 95.847404][ T5847] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 97.083754][ T5865] chnl_net:caif_netlink_parms(): no params data found
[ 97.180798][ T5865] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.188997][ T5865] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.196362][ T5865] bridge_slave_0: entered allmulticast mode
[ 97.203842][ T5865] bridge_slave_0: entered promiscuous mode
[ 97.213308][ T5865] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.220662][ T5865] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.228279][ T5865] bridge_slave_1: entered allmulticast mode
[ 97.236326][ T5865] bridge_slave_1: entered promiscuous mode
[ 97.247948][ T9] cfg80211: failed to load regulatory.db
[ 97.286180][ T5865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 97.299371][ T5865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 97.336627][ T5865] team0: Port device team_slave_0 added
[ 97.345404][ T5865] team0: Port device team_slave_1 added
[ 97.378180][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 97.385250][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 97.411952][ T5865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 97.425378][ T5865] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 97.432403][ T5865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 97.458504][ T5865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 97.510161][ T5865] hsr_slave_0: entered promiscuous mode
[ 97.517213][ T5865] hsr_slave_1: entered promiscuous mode
[ 97.710018][ T5865] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 97.723324][ T5865] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 97.735104][ T5865] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 97.749711][ T5865] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 97.784843][ T5865] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.792135][ T5865] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 97.800343][ T5865] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.807545][ T5865] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.873961][ T5865] 8021q: adding VLAN 0 to HW filter on device bond0
[ 97.897986][ T37] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.907546][ T37] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.926415][ T5865] 8021q: adding VLAN 0 to HW filter on device team0
[ 97.942024][ T3474] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.949274][ T3474] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.967851][ T37] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.975119][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 98.179422][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 98.235309][ T5865] veth0_vlan: entered promiscuous mode
[ 98.248567][ T5865] veth1_vlan: entered promiscuous mode
[ 98.282071][ T5865] veth0_macvtap: entered promiscuous mode
[ 98.292177][ T5865] veth1_macvtap: entered promiscuous mode
[ 98.315386][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 98.330911][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 98.348429][ T3474] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 98.359563][ T3474] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 98.370438][ T3474] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 98.380039][ T3474] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 98.547261][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.623629][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.724554][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.805301][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 99.925447][ T3474] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 99.933992][ T3474] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 99.972572][ T3474] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 99.980530][ T3474] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 100.331074][ T5929] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 100.341024][ T5929] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 100.349506][ T5929] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 100.358162][ T5929] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 100.366287][ T5929] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/12/28 00:10:30 executed programs: 0
[ 100.938404][ T5151] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 100.951774][ T5151] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 100.959876][ T5151] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 100.968830][ T5151] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 100.976807][ T5151] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 101.156309][ T5940] chnl_net:caif_netlink_parms(): no params data found
[ 101.244059][ T5940] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.251513][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[ 101.258974][ T5940] bridge_slave_0: entered allmulticast mode
[ 101.266889][ T5940] bridge_slave_0: entered promiscuous mode
[ 101.275663][ T5940] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.282881][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[ 101.290783][ T5940] bridge_slave_1: entered allmulticast mode
[ 101.298438][ T5940] bridge_slave_1: entered promiscuous mode
[ 101.337249][ T5940] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 101.349811][ T5940] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 101.388600][ T5940] team0: Port device team_slave_0 added
[ 101.397227][ T5940] team0: Port device team_slave_1 added
[ 101.440180][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 101.447897][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 101.473902][ T5940] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 101.487226][ T5940] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 101.494236][ T5940] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 101.520285][ T5940] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 101.633455][ T5940] hsr_slave_0: entered promiscuous mode
[ 101.641649][ T5940] hsr_slave_1: entered promiscuous mode
[ 101.649351][ T5940] debugfs: 'hsr0' already exists in 'hsr'
[ 101.655570][ T5940] Cannot create hsr debugfs directory
[ 101.661620][ T12] bridge_slave_1: left allmulticast mode
[ 101.668010][ T12] bridge_slave_1: left promiscuous mode
[ 101.674461][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 101.688323][ T12] bridge_slave_0: left allmulticast mode
[ 101.694003][ T12] bridge_slave_0: left promiscuous mode
[ 101.700037][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 101.983609][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 101.997002][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 102.007417][ T12] bond0 (unregistering): Released all slaves
[ 102.105071][ T12] hsr_slave_0: left promiscuous mode
[ 102.111877][ T12] hsr_slave_1: left promiscuous mode
[ 102.119606][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 102.127241][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 102.136818][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 102.144257][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 102.162098][ T12] veth1_macvtap: left promiscuous mode
[ 102.168828][ T12] veth0_macvtap: left promiscuous mode
[ 102.174499][ T12] veth1_vlan: left promiscuous mode
[ 102.180062][ T12] veth0_vlan: left promiscuous mode
[ 102.545379][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 102.574739][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 103.006992][ T5151] Bluetooth: hci0: command tx timeout
[ 103.854143][ T5940] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 103.867931][ T5940] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 103.882112][ T5940] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 103.896753][ T5940] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 104.222888][ T5940] 8021q: adding VLAN 0 to HW filter on device bond0
[ 104.270627][ T5940] 8021q: adding VLAN 0 to HW filter on device team0
[ 104.318878][ T37] bridge0: port 1(bridge_slave_0) entered blocking state
[ 104.326172][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 104.346450][ T4778] bridge0: port 2(bridge_slave_1) entered blocking state
[ 104.353749][ T4778] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 104.821451][ T5940] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 104.882461][ T5940] veth0_vlan: entered promiscuous mode
[ 104.902186][ T5940] veth1_vlan: entered promiscuous mode
[ 104.939700][ T5940] veth0_macvtap: entered promiscuous mode
[ 104.953594][ T5940] veth1_macvtap: entered promiscuous mode
[ 104.977574][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 104.990390][ T5940] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 105.016155][ T4778] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.026068][ T4778] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.040579][ T4778] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.064157][ T4778] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.088632][ T5151] Bluetooth: hci0: command tx timeout
[ 105.176405][ T3474] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.184782][ T3474] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.223104][ T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.231580][ T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.164879][ T5151] Bluetooth: hci0: command tx timeout
2025/12/28 00:10:38 executed programs: 3
[ 109.254940][ T5151] Bluetooth: hci0: command tx timeout
[ 111.302871][ T5987] ------------[ cut here ]------------
[ 111.303501][ T5987]
[ 111.303508][ T5987] ======================================================
[ 111.303513][ T5987] WARNING: possible circular locking dependency detected
[ 111.303525][ T5987] syzkaller #0 Not tainted
[ 111.303532][ T5987] ------------------------------------------------------
[ 111.303537][ T5987] syz.0.18/5987 is trying to acquire lock:
[ 111.303544][ T5987] ffffffff8e333180 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 111.303582][ T5987]
[ 111.303582][ T5987] but task is already holding lock:
[ 111.303586][ T5987] ffff8880b873ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 111.303622][ T5987]
[ 111.303622][ T5987] which lock already depends on the new lock.
[ 111.303622][ T5987]
[ 111.303627][ T5987]
[ 111.303627][ T5987] the existing dependency chain (in reverse order) is:
[ 111.303631][ T5987]
[ 111.303631][ T5987] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 111.303648][ T5987] _raw_spin_lock_nested+0x32/0x50
[ 111.303662][ T5987] raw_spin_rq_lock_nested+0x2a/0x140
[ 111.303680][ T5987] task_rq_lock+0xbc/0x470
[ 111.303698][ T5987] cgroup_move_task+0x92/0x2a0
[ 111.303711][ T5987] css_set_move_task+0x658/0x9e0
[ 111.303730][ T5987] cgroup_post_fork+0x1ef/0x7a0
[ 111.303747][ T5987] copy_process+0x3614/0x3950
[ 111.303766][ T5987] kernel_clone+0x21e/0x820
[ 111.303776][ T5987] user_mode_thread+0xdd/0x140
[ 111.303787][ T5987] rest_init+0x23/0x300
[ 111.303836][ T5987] start_kernel+0x3ac/0x400
[ 111.303849][ T5987] x86_64_start_reservations+0x24/0x30
[ 111.303868][ T5987] x86_64_start_kernel+0x143/0x1c0
[ 111.303885][ T5987] common_startup_64+0x13e/0x147
[ 111.303899][ T5987]
[ 111.303899][ T5987] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 111.303919][ T5987] _raw_spin_lock_irqsave+0xa7/0xf0
[ 111.303931][ T5987] try_to_wake_up+0x67/0x12b0
[ 111.303945][ T5987] __wake_up_common_lock+0x137/0x1f0
[ 111.303963][ T5987] tty_port_default_wakeup+0xfb/0x170
[ 111.303982][ T5987] serial8250_tx_chars+0x72e/0x970
[ 111.303998][ T5987] serial8250_handle_irq+0x633/0xbb0
[ 111.304014][ T5987] serial8250_default_handle_irq+0xbf/0x200
[ 111.304034][ T5987] serial8250_interrupt+0x8d/0x180
[ 111.304046][ T5987] __handle_irq_event_percpu+0x285/0xa60
[ 111.304063][ T5987] handle_irq_event+0x8b/0x1e0
[ 111.304079][ T5987] handle_edge_irq+0x23b/0xa10
[ 111.304094][ T5987] __common_interrupt+0x141/0x1f0
[ 111.304111][ T5987] common_interrupt+0xb6/0xe0
[ 111.304130][ T5987] asm_common_interrupt+0x26/0x40
[ 111.304144][ T5987] kasan_byte_accessible+0x16/0x30
[ 111.304159][ T5987] __kasan_check_byte+0x12/0x40
[ 111.304172][ T5987] lock_acquire+0x84/0x340
[ 111.304192][ T5987] _raw_spin_lock+0x2e/0x40
[ 111.304203][ T5987] unix_peer_get+0x21/0xe0
[ 111.304222][ T5987] unix_dgram_sendmsg+0x77f/0x1840
[ 111.304236][ T5987] sock_sendmsg_nosec+0x18f/0x1d0
[ 111.304256][ T5987] sock_write_iter+0x2d9/0x3d0
[ 111.304274][ T5987] do_iter_readv_writev+0x623/0x8c0
[ 111.304295][ T5987] vfs_writev+0x31a/0x960
[ 111.304309][ T5987] do_writev+0x14d/0x2d0
[ 111.304323][ T5987] do_syscall_64+0xfa/0xf80
[ 111.304337][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.304350][ T5987]
[ 111.304350][ T5987] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 111.304370][ T5987] _raw_spin_lock_irqsave+0xa7/0xf0
[ 111.304382][ T5987] __wake_up_common_lock+0x2f/0x1f0
[ 111.304398][ T5987] tty_port_default_wakeup+0xfb/0x170
[ 111.304417][ T5987] serial8250_tx_chars+0x72e/0x970
[ 111.304432][ T5987] serial8250_handle_irq+0x633/0xbb0
[ 111.304465][ T5987] serial8250_default_handle_irq+0xbf/0x200
[ 111.304484][ T5987] serial8250_interrupt+0x8d/0x180
[ 111.304497][ T5987] __handle_irq_event_percpu+0x285/0xa60
[ 111.304514][ T5987] handle_irq_event+0x8b/0x1e0
[ 111.304530][ T5987] handle_edge_irq+0x23b/0xa10
[ 111.304544][ T5987] __common_interrupt+0x141/0x1f0
[ 111.304560][ T5987] common_interrupt+0xb6/0xe0
[ 111.304579][ T5987] asm_common_interrupt+0x26/0x40
[ 111.304591][ T5987] _raw_spin_unlock_irqrestore+0xa8/0x110
[ 111.304608][ T5987] uart_port_unlock_deref+0x111/0x2f0
[ 111.304624][ T5987] uart_write+0xe8/0x130
[ 111.304639][ T5987] n_tty_write+0xd78/0x12a0
[ 111.304659][ T5987] file_tty_write+0x559/0xa20
[ 111.304673][ T5987] vfs_write+0x5c9/0xb30
[ 111.304692][ T5987] ksys_write+0x145/0x250
[ 111.304711][ T5987] do_syscall_64+0xfa/0xf80
[ 111.304726][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.304739][ T5987]
[ 111.304739][ T5987] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 111.304758][ T5987] _raw_spin_lock_irqsave+0xa7/0xf0
[ 111.304770][ T5987] serial8250_console_write+0x17e/0x1ba0
[ 111.304787][ T5987] console_flush_all+0x745/0xb60
[ 111.304803][ T5987] console_unlock+0xbb/0x190
[ 111.304816][ T5987] vprintk_emit+0x4f8/0x5f0
[ 111.304829][ T5987] _printk+0xcf/0x120
[ 111.304849][ T5987] register_console+0xa8b/0xf90
[ 111.304865][ T5987] univ8250_console_init+0x3a/0x70
[ 111.304886][ T5987] console_init+0xfc/0x3f0
[ 111.304902][ T5987] start_kernel+0x252/0x400
[ 111.304914][ T5987] x86_64_start_reservations+0x24/0x30
[ 111.304931][ T5987] x86_64_start_kernel+0x143/0x1c0
[ 111.304948][ T5987] common_startup_64+0x13e/0x147
[ 111.304961][ T5987]
[ 111.304961][ T5987] -> #0 (console_owner){....}-{0:0}:
[ 111.304980][ T5987] __lock_acquire+0x15a6/0x2cf0
[ 111.305000][ T5987] lock_acquire+0x117/0x340
[ 111.305018][ T5987] console_flush_all+0x6ee/0xb60
[ 111.305034][ T5987] console_unlock+0xbb/0x190
[ 111.305046][ T5987] vprintk_emit+0x4f8/0x5f0
[ 111.305059][ T5987] _printk+0xcf/0x120
[ 111.305079][ T5987] __report_bug+0x305/0x500
[ 111.305092][ T5987] report_bug+0x16a/0x220
[ 111.305104][ T5987] handle_bug+0x98/0x200
[ 111.305120][ T5987] exc_invalid_op+0x1a/0x50
[ 111.305137][ T5987] asm_exc_invalid_op+0x1a/0x20
[ 111.305149][ T5987] sched_change_end+0x4f6/0x640
[ 111.305162][ T5987] rt_mutex_setprio+0x488/0xb70
[ 111.305181][ T5987] remove_waiter+0x7f5/0xaf0
[ 111.305201][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 111.305221][ T5987] futex_lock_pi+0x530/0xa90
[ 111.305234][ T5987] do_futex+0x292/0x420
[ 111.305255][ T5987] __se_sys_futex+0x36f/0x400
[ 111.305275][ T5987] do_syscall_64+0xfa/0xf80
[ 111.305290][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.305303][ T5987]
[ 111.305303][ T5987] other info that might help us debug this:
[ 111.305303][ T5987]
[ 111.305308][ T5987] Chain exists of:
[ 111.305308][ T5987] console_owner --> &p->pi_lock --> &rq->__lock
[ 111.305308][ T5987]
[ 111.305330][ T5987] Possible unsafe locking scenario:
[ 111.305330][ T5987]
[ 111.305334][ T5987] CPU0 CPU1
[ 111.305338][ T5987] ---- ----
[ 111.305343][ T5987] lock(&rq->__lock);
[ 111.305352][ T5987] lock(&p->pi_lock);
[ 111.305362][ T5987] lock(&rq->__lock);
[ 111.305372][ T5987] lock(console_owner);
[ 111.305382][ T5987]
[ 111.305382][ T5987] *** DEADLOCK ***
[ 111.305382][ T5987]
[ 111.305385][ T5987] 5 locks held by syz.0.18/5987:
[ 111.305394][ T5987] #0: ffff8880772c3528 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[ 111.305440][ T5987] #1: ffff8880273cc768 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[ 111.305480][ T5987] #2: ffff8880b873ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 111.305520][ T5987] #3: ffffffff8e3331e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 111.305560][ T5987] #4: ffffffff8e21aa98 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 111.305596][ T5987]
[ 111.305596][ T5987] stack backtrace:
[ 111.305613][ T5987] CPU: 0 UID: 0 PID: 5987 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 111.305630][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 111.305646][ T5987] Call Trace:
[ 111.305652][ T5987]
[ 111.305658][ T5987] dump_stack_lvl+0x189/0x250
[ 111.305676][ T5987] ? __pfx_dump_stack_lvl+0x10/0x10
[ 111.305691][ T5987] ? __pfx__printk+0x10/0x10
[ 111.305723][ T5987] ? print_lock_name+0xde/0x100
[ 111.305744][ T5987] print_circular_bug+0x2e2/0x300
[ 111.305759][ T5987] check_noncircular+0x12e/0x150
[ 111.305775][ T5987] __lock_acquire+0x15a6/0x2cf0
[ 111.305802][ T5987] ? console_flush_all+0x131/0xb60
[ 111.305816][ T5987] lock_acquire+0x117/0x340
[ 111.305834][ T5987] ? console_flush_all+0x131/0xb60
[ 111.305852][ T5987] ? do_raw_spin_unlock+0x122/0x240
[ 111.305868][ T5987] ? console_flush_all+0x131/0xb60
[ 111.305882][ T5987] console_flush_all+0x6ee/0xb60
[ 111.305897][ T5987] ? console_flush_all+0x131/0xb60
[ 111.305913][ T5987] ? console_flush_all+0x131/0xb60
[ 111.305930][ T5987] ? __pfx_console_flush_all+0x10/0x10
[ 111.305949][ T5987] ? is_printk_cpu_sync_owner+0x32/0x40
[ 111.305967][ T5987] console_unlock+0xbb/0x190
[ 111.305980][ T5987] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 111.305996][ T5987] ? __pfx_console_unlock+0x10/0x10
[ 111.306012][ T5987] vprintk_emit+0x4f8/0x5f0
[ 111.306026][ T5987] ? __pfx_vprintk_emit+0x10/0x10
[ 111.306041][ T5987] ? __lock_acquire+0x6b6/0x2cf0
[ 111.306060][ T5987] ? __lock_acquire+0x6b6/0x2cf0
[ 111.306081][ T5987] _printk+0xcf/0x120
[ 111.306102][ T5987] ? __pfx__printk+0x10/0x10
[ 111.306123][ T5987] ? find_bug+0xa5/0x370
[ 111.306134][ T5987] ? sched_change_end+0x4f6/0x640
[ 111.306148][ T5987] ? sched_change_end+0x4f6/0x640
[ 111.306161][ T5987] __report_bug+0x305/0x500
[ 111.306173][ T5987] ? sched_change_end+0x4f6/0x640
[ 111.306189][ T5987] ? __pfx___report_bug+0x10/0x10
[ 111.306203][ T5987] ? rcu_read_lock_sched_held+0x89/0x100
[ 111.306217][ T5987] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 111.306235][ T5987] ? sched_change_end+0x4f6/0x640
[ 111.306247][ T5987] report_bug+0x16a/0x220
[ 111.306260][ T5987] ? sched_change_end+0x4f6/0x640
[ 111.306272][ T5987] ? sched_change_end+0x4f8/0x640
[ 111.306285][ T5987] handle_bug+0x98/0x200
[ 111.306301][ T5987] exc_invalid_op+0x1a/0x50
[ 111.306317][ T5987] asm_exc_invalid_op+0x1a/0x20
[ 111.306330][ T5987] RIP: 0010:sched_change_end+0x4f6/0x640
[ 111.306344][ T5987] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 111.306356][ T5987] RSP: 0018:ffffc90003017850 EFLAGS: 00010046
[ 111.306367][ T5987] RAX: 1ffff11004e797a0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 111.306377][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880273cbd00
[ 111.306386][ T5987] RBP: ffff8880273cbfa8 R08: ffff8880273cbd07 R09: 1ffff11004e797a0
[ 111.306396][ T5987] R10: dffffc0000000000 R11: ffffed1004e797a1 R12: dffffc0000000000
[ 111.306406][ T5987] R13: ffff8880273cbd00 R14: ffff8880b873ab00 R15: ffff8880273cbd00
[ 111.306419][ T5987] ? sched_change_end+0x4af/0x640
[ 111.306441][ T5987] rt_mutex_setprio+0x488/0xb70
[ 111.306463][ T5987] remove_waiter+0x7f5/0xaf0
[ 111.306483][ T5987] ? lockdep_hardirqs_on+0x98/0x140
[ 111.306498][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 111.306519][ T5987] futex_lock_pi+0x530/0xa90
[ 111.306535][ T5987] ? __pfx_futex_lock_pi+0x10/0x10
[ 111.306555][ T5987] ? futex_hash+0x40/0x2d0
[ 111.306571][ T5987] ? futex_hash+0x2ad/0x2d0
[ 111.306589][ T5987] ? __pfx_futex_wake_mark+0x10/0x10
[ 111.306606][ T5987] ? __pfx_futex_wake+0x10/0x10
[ 111.306623][ T5987] ? handle_mm_fault+0xdb/0x32b0
[ 111.306641][ T5987] do_futex+0x292/0x420
[ 111.306663][ T5987] ? __pfx_do_futex+0x10/0x10
[ 111.306685][ T5987] __se_sys_futex+0x36f/0x400
[ 111.306707][ T5987] ? __pfx___se_sys_futex+0x10/0x10
[ 111.306730][ T5987] ? __x64_sys_futex+0x21/0xf0
[ 111.306751][ T5987] do_syscall_64+0xfa/0xf80
[ 111.306765][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.306778][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 111.306793][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.306805][ T5987] RIP: 0033:0x7f8bcd58f749
[ 111.306822][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 111.306833][ T5987] RSP: 002b:00007ffd05a9df78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 111.306846][ T5987] RAX: ffffffffffffffda RBX: 00007f8bcd7e5fa0 RCX: 00007f8bcd58f749
[ 111.306856][ T5987] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 111.306864][ T5987] RBP: 00007f8bcd613f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 111.306872][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 111.306880][ T5987] R13: 00007f8bcd7e5fa0 R14: 00007f8bcd7e5fa0 R15: 0000000000000006
[ 111.306895][ T5987]
[ 112.552167][ T5987] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#0: syz.0.18/5987
[ 112.562146][ T5987] Modules linked in:
[ 112.566042][ T5987] CPU: 0 UID: 0 PID: 5987 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 112.575149][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 112.585204][ T5987] RIP: 0010:sched_change_end+0x4f6/0x640
[ 112.590857][ T5987] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 112.610548][ T5987] RSP: 0018:ffffc90003017850 EFLAGS: 00010046
[ 112.616623][ T5987] RAX: 1ffff11004e797a0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 112.624594][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880273cbd00
[ 112.632561][ T5987] RBP: ffff8880273cbfa8 R08: ffff8880273cbd07 R09: 1ffff11004e797a0
[ 112.640532][ T5987] R10: dffffc0000000000 R11: ffffed1004e797a1 R12: dffffc0000000000
[ 112.648520][ T5987] R13: ffff8880273cbd00 R14: ffff8880b873ab00 R15: ffff8880273cbd00
[ 112.656491][ T5987] FS: 0000555559a6a500(0000) GS:ffff8881259dc000(0000) knlGS:0000000000000000
[ 112.665425][ T5987] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 112.672033][ T5987] CR2: 00005564077f6620 CR3: 0000000075ef0000 CR4: 00000000003526f0
[ 112.680048][ T5987] Call Trace:
[ 112.683326][ T5987]
[ 112.686259][ T5987] rt_mutex_setprio+0x488/0xb70
[ 112.691133][ T5987] remove_waiter+0x7f5/0xaf0
[ 112.695735][ T5987] ? lockdep_hardirqs_on+0x98/0x140
[ 112.701386][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 112.707120][ T5987] futex_lock_pi+0x530/0xa90
[ 112.711715][ T5987] ? __pfx_futex_lock_pi+0x10/0x10
[ 112.716837][ T5987] ? futex_hash+0x40/0x2d0
[ 112.721262][ T5987] ? futex_hash+0x2ad/0x2d0
[ 112.725767][ T5987] ? __pfx_futex_wake_mark+0x10/0x10
[ 112.731053][ T5987] ? __pfx_futex_wake+0x10/0x10
[ 112.735913][ T5987] ? handle_mm_fault+0xdb/0x32b0
[ 112.740874][ T5987] do_futex+0x292/0x420
[ 112.745072][ T5987] ? __pfx_do_futex+0x10/0x10
[ 112.749774][ T5987] __se_sys_futex+0x36f/0x400
[ 112.754493][ T5987] ? __pfx___se_sys_futex+0x10/0x10
[ 112.759700][ T5987] ? __x64_sys_futex+0x21/0xf0
[ 112.764472][ T5987] do_syscall_64+0xfa/0xf80
[ 112.768977][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.775053][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 112.779739][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 112.785660][ T5987] RIP: 0033:0x7f8bcd58f749
[ 112.790074][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 112.809684][ T5987] RSP: 002b:00007ffd05a9df78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 112.818123][ T5987] RAX: ffffffffffffffda RBX: 00007f8bcd7e5fa0 RCX: 00007f8bcd58f749
[ 112.826100][ T5987] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 112.834096][ T5987] RBP: 00007f8bcd613f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 112.842067][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 112.850049][ T5987] R13: 00007f8bcd7e5fa0 R14: 00007f8bcd7e5fa0 R15: 0000000000000006
[ 112.858030][ T5987]
[ 112.861047][ T5987] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 112.868330][ T5987] CPU: 0 UID: 0 PID: 5987 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 112.877437][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 112.887492][ T5987] Call Trace:
[ 112.890770][ T5987]
[ 112.893704][ T5987] dump_stack_lvl+0x99/0x250
[ 112.898300][ T5987] ? __asan_memcpy+0x40/0x70
[ 112.902899][ T5987] ? __pfx_dump_stack_lvl+0x10/0x10
[ 112.908097][ T5987] ? __pfx__printk+0x10/0x10
[ 112.912699][ T5987] vpanic+0x237/0x6d0
[ 112.916698][ T5987] ? __pfx_vpanic+0x10/0x10
[ 112.921202][ T5987] ? is_bpf_text_address+0x292/0x2b0
[ 112.926496][ T5987] ? is_bpf_text_address+0x26/0x2b0
[ 112.931698][ T5987] panic+0xb9/0xc0
[ 112.935420][ T5987] ? __pfx_panic+0x10/0x10
[ 112.939848][ T5987] __warn+0x317/0x4b0
[ 112.943832][ T5987] ? sched_change_end+0x4f6/0x640
[ 112.948858][ T5987] ? sched_change_end+0x4f6/0x640
[ 112.953882][ T5987] __report_bug+0x288/0x500
[ 112.958391][ T5987] ? sched_change_end+0x4f6/0x640
[ 112.963424][ T5987] ? __pfx___report_bug+0x10/0x10
[ 112.968451][ T5987] ? rcu_read_lock_sched_held+0x89/0x100
[ 112.974085][ T5987] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 112.980177][ T5987] ? sched_change_end+0x4f6/0x640
[ 112.985205][ T5987] report_bug+0x16a/0x220
[ 112.989536][ T5987] ? sched_change_end+0x4f6/0x640
[ 112.994555][ T5987] ? sched_change_end+0x4f8/0x640
[ 112.999578][ T5987] handle_bug+0x98/0x200
[ 113.003854][ T5987] exc_invalid_op+0x1a/0x50
[ 113.008378][ T5987] asm_exc_invalid_op+0x1a/0x20
[ 113.013244][ T5987] RIP: 0010:sched_change_end+0x4f6/0x640
[ 113.018876][ T5987] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 113.038483][ T5987] RSP: 0018:ffffc90003017850 EFLAGS: 00010046
[ 113.044571][ T5987] RAX: 1ffff11004e797a0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 113.052543][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880273cbd00
[ 113.060514][ T5987] RBP: ffff8880273cbfa8 R08: ffff8880273cbd07 R09: 1ffff11004e797a0
[ 113.068494][ T5987] R10: dffffc0000000000 R11: ffffed1004e797a1 R12: dffffc0000000000
[ 113.076466][ T5987] R13: ffff8880273cbd00 R14: ffff8880b873ab00 R15: ffff8880273cbd00
[ 113.084445][ T5987] ? sched_change_end+0x4af/0x640
[ 113.089476][ T5987] rt_mutex_setprio+0x488/0xb70
[ 113.094338][ T5987] remove_waiter+0x7f5/0xaf0
[ 113.098933][ T5987] ? lockdep_hardirqs_on+0x98/0x140
[ 113.104136][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 113.109871][ T5987] futex_lock_pi+0x530/0xa90
[ 113.114469][ T5987] ? __pfx_futex_lock_pi+0x10/0x10
[ 113.119591][ T5987] ? futex_hash+0x40/0x2d0
[ 113.124012][ T5987] ? futex_hash+0x2ad/0x2d0
[ 113.128521][ T5987] ? __pfx_futex_wake_mark+0x10/0x10
[ 113.133815][ T5987] ? __pfx_futex_wake+0x10/0x10
[ 113.138669][ T5987] ? handle_mm_fault+0xdb/0x32b0
[ 113.143611][ T5987] do_futex+0x292/0x420
[ 113.147776][ T5987] ? __pfx_do_futex+0x10/0x10
[ 113.152490][ T5987] __se_sys_futex+0x36f/0x400
[ 113.157175][ T5987] ? __pfx___se_sys_futex+0x10/0x10
[ 113.162408][ T5987] ? __x64_sys_futex+0x21/0xf0
[ 113.167186][ T5987] do_syscall_64+0xfa/0xf80
[ 113.171689][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.177752][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 113.182427][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 113.188318][ T5987] RIP: 0033:0x7f8bcd58f749
[ 113.192736][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 113.212346][ T5987] RSP: 002b:00007ffd05a9df78 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 113.220782][ T5987] RAX: ffffffffffffffda RBX: 00007f8bcd7e5fa0 RCX: 00007f8bcd58f749
[ 113.228771][ T5987] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 113.236740][ T5987] RBP: 00007f8bcd613f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 113.244707][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 113.252674][ T5987] R13: 00007f8bcd7e5fa0 R14: 00007f8bcd7e5fa0 R15: 0000000000000006
[ 113.260676][ T5987]
[ 114.383337][ T5987] Shutting down cpus with NMI
[ 114.388695][ T5987] Kernel Offset: disabled
[ 114.393028][ T5987] Rebooting in 86400 seconds..